Lucene search

[email protected]NVD:CVE-2023-30577

HistoryJul 26, 2023 - 5:15 p.m.

CVE-2023-30577

2023-07-2617:15:10

CWE-88

[email protected]

web.nvd.nist.gov

amanda

vulnerability

runtar.c

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.6%

JSON

AMANDA (Advanced Maryland Automatic Network Disk Archiver) before tag-community-3.5.4 mishandles argument checking for runtar.c, a different vulnerability than CVE-2022-37705.

Affected configurations

NVD

Node

zmandaamandaRange<3.5.4

References

github.com/zmanda/amanda/releases/tag/tag-community-3.5.4

github.com/zmanda/amanda/security/advisories/GHSA-crrw-v393-h5q3

lists.debian.org/debian-lts-announce/2023/12/msg00003.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7OITHG7FBD7HQRX2XT75GSGWB3D6XSZU/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YYGJJARVLRBMNWSNXKZBXZNX3M53OVPA/

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.6%

JSON

Related for NVD:CVE-2023-30577

cvelist2 openvas12 nessus18 redhatcve2 cloudlinux1 prion2 cve2 debiancve2 osv7 ubuntucve2 debian1 amazon2 fedora5 nvd1 ubuntu4